Joomla community powered logo

Site Slogan

Details

 

← What is Two Factor Authentication | Google Authenticator Code Generator Setup →

 

Why do we need Two Factor Authentication

Of course, if our passwords are only known by us and nobody else can use it, there is no problem. However, a lot of people with more or less malicious intentions also walk around on the internet. They try to get the available information so they can do their "job". If we only have a username and a password to enter the site, it is in a lot of cases not really hard to guess what it is, so they can enter your site just like you do - but in most of the cases with less noble intentions.

Username and password flaws

Because administrators need to remind their username and password to log in, they tend to take quite "simple" usernames and passwords. In most of the cases, they will also need to remember this kind of information for a couple of sites or even lots of sites, so they also tend to keep the same username and password for different sites.

A lot of these names and passwords are quite easy to guess, as the names for administrator are mostly taken from a list with names like

  • admin
  • TheBoss
  • JoomlaAdmin

Also for passwords, there is a large list with easy guessable passwords:

  • password
  • secret
  • 1234
  • admin
  • letmein
  • iamtheboss

Extra protection layer

By integrating a second layer of authentication, which is completely different from the other one (password, username), you can dramatically increase your level of protection. That's the whole philosophy behind the 2FA story, where the second method of authentication is completely different from the first one as it will force you to HAVE something (a physical device, a device which generates a temporary code so you need to have the device available, ...).

For sure for the more "powerful" accounts on your site, it is a very good idea to protect them with 2FA: all super users (administrators), all publishers and all editors are the target audience of this technique.

© Edoozeh 2023

Edoozeh is not affiliated with or endorsed by the Joomla Project or Open Source Matters. The Joomla logo is used under a limited license granted by Open Source Matters the trademark holder in the United States and other countries.

↑ Top

NOTE! This site uses cookies.

If you do not change browser settings, you agree to it. Learn more

I understand

Cookies

To make this site work properly, we sometimes place small data files called cookies on your device. Most big websites do this too.

What are cookies?

A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

How do we use cookies?

A number of our pages use cookies to remember:

Also, some videos embedded in our pages use a cookie to anonymously gather statistics on how you got there and what videos you visited.

Enabling these cookies is not strictly necessary for the website to work but it will provide you with a better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.

The cookie-related information is not used to identify you personally and the pattern data is fully under our control. These cookies are not used for any purpose other than those described here.

How to control cookies

You can control and/or delete cookies as you wish – for details, see aboutcookies.org. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.

You can find the full EU privacy guideline by clicking on this link